Overview

overview

10

Static

static

10

100a8a74be...18.exe

windows7-x64

1

100a8a74be...18.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    100a8a74be151e49d4515ccde17b6a91_JaffaCakes118

  • Size

    32KB

  • MD5

    100a8a74be151e49d4515ccde17b6a91

  • SHA1

    c60ebed7ad681751ed7acdfddca3ed800985900c

  • SHA256

    e3f2a2b8f4457686ca64fb9436bd8183f62bba1b42efdfe17db2af99d89beadd

  • SHA512

    bf54f9fe3d0fbabe3a2fb0e55215b8e2bc31ba073d7693d9246fbc580f57f2baea15b7862576519f0ebf2c0f420e74137a50db15a3fd5f17be50a65da82a00ba

  • SSDEEP

    384:ZCbP3tSX6vBq7lazgEkh0ZQ2t3y5Q1Q0YtQWTItebrOFeqzCSfF:WS6vBqMz6h0qq3369r+F

Score
10/10
njrat

Malware Config

Extracted

Family

njrat

C2

10.0.1.10:5552

Mutex

7ad0644c82

Attributes
  • reg_key

    7ad0644c82

  • splitter

    @!#&^%$

Signatures

  • Njrat family
    njrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 100a8a74be151e49d4515ccde17b6a91_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections